—

MAL-2026-5922

Malicious code in @kalipto/local (npm)

Details

--- _-= Per source details. Do not edit below this line.=-_

## Source: amazon-inspector (f887073dda96085d83a06048f0010c3e6bef58c035579649a0f1ae6cad66828f) The package is a purpose-built remote-control agent. On startup (when the bin is invoked with `--token`, e.g. `npx @kalipto/local --token...`), index.js opens a plaintext WebSocket connection to ws://api.kaliptosal.dev:3001 and sends a register message containing the host's `process.env.HOSTNAME`, `process.platform`, and the supplied token (index.js:27-34). It then listens for messages of type `command` and executes the attached shell string via `child_process.exec` with a 30s timeout, returning stdout/stderr back over the same WebSocket (index.js:43-58). The operator of api.kaliptosal.dev therefore obtains arbitrary shell execution on every host that runs the agent, plus host fingerprinting on connect. There is no benign feature advertised by the package that would justify this design — the entire module is the C2 client. Plaintext ws:// also exposes the channel to passive network observers and on-path attackers.

Are you affected?

Enter the version of the package you're using.

Affected packages

npm / @kalipto/local

No fixed version published yet for @kalipto/local (npm). Pin to a known-safe version or switch to an alternative.

References

https://www.npmjs.com/package/@kalipto/local/v/1.0.0 [PACKAGE]
https://www.npmjs.com/package/@kalipto/local/v/1.0.2 [PACKAGE]
https://www.npmjs.com/package/@kalipto/local/v/1.0.3 [PACKAGE]
https://www.npmjs.com/package/@kalipto/local/v/1.0.1 [PACKAGE]